In this chapter we present an architecture for a distributed secure system. More specifically, we sketch an object-oriented design based on a standard for distributed security services, ECMA-219. This design could be realized using a CORBA implementation, such as Orbix0.8mm Tm from Iona Technologies.
The basic design includes services for authentication and the issuing of Privilege Attribute Certificates (PACs). To get a comprehensive secure system, we also present an object-oriented adaptation of the Generic Security Service Application Programming Interface, GSS-API [Lin97]. GSS-API provides confidentiality and integrity services to communicating principals.